Specifies the target endpoint using a NetBIOS name or the standard connection:

<url>: [<transport>://]<target>[:<port>]

If not specified, /r:localhost is used.

/un[encrypted]

Specifies that the messages to the remote shell will not be encrypted. This is useful for troubleshooting or when the network traffic is already encrypted using ipsec, or when physical security is enforced.

By default, the messages are encrypted using Kerberos or NTLM keys.

This command-line option is ignored when HTTPS transport is selected.

/u[sername]:<username>

Specifies username on command line.

If not specified, the tool will use Negotiate authentication or prompt for the name.

If /u[sername] is specified, /p[assword] must also be specified.

/p[assword]:<password>

Specifies password on command line.

If /p[assword] is not specified but /username is, the tool will prompt for the password.

If /p[assword] is specified, /u[sername] must also be specified.

/t[imeout]:<seconds>

This option is deprecated.

/d[irectory]:<path>

Specifies starting directory for remote shell.

If not specified, the remote shell will start in the user's home directory defined by the environment variable %USERPROFILE%.

/env[ironment]:<string>=<value>

Specifies a single environment variable to be set when shell starts, which allows changing default environment for shell.

Multiple occurrences of this switch must be used to specify multiple environment variables.

/noe[cho]

Specifies that echo should be disabled. This may be necessary to ensure that user's answers to remote prompts are not displayed locally.

By default echo is "on".

/nop[rofile]

Specifies that the user's profile should not be loaded.

By default, the server will attempt to load the user profile.

If the remote user is not a local administrator on the target system, then this option will be required (the default will result in error).

/a[llow]d[elegate]

Specifies that the user's credentials can be used to access a remote share, for example, found on a different machine than the target endpoint.

/comp[ression]

Turn on compression. Older installations on remote machines may not support compression so it is off by default.

Default setting is off, since older installations on remote machines may not support compression.

/[use]ssl

Use an SSL connection when using a remote endpoint. Specifying this instead of the transport https: will use the default WinRM default port.